made pages for all of the tutorials

app/controllers/tutorials_controller.rb

@@ -5,4 +5,31 @@ class TutorialsController < ApplicationController
   def injection
   end
   
+  def xss
+  end
+  
+  def broken_auth
+  end
+  
+  def insecure_doa
+  end
+  
+  def csrf
+  end
+  
+  def misconfig
+  end
+  
+  def crypto
+  end
+  
+  def url_access
+  end
+  
+  def ssl_tls
+  end
+  
+  def redirects
+  end
+  
 end

app/views/layouts/tutorial/_sidebar.html.erb

@@ -1,84 +1,84 @@
 <div id="mainnav" class="hidden-phone hidden-tablet">
   <ul style="display: block;">
-    <li>
-      <a href="#">
+    <li id="injection">
+      <%= link_to injection_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A1 Injection
-      </a>
+     <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="xss">
+     <%= link_to xss_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
        A2 XSS
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="broken_auth">
+      <%= link_to broken_auth_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A3 Broken Auth
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="insecure_doa">
+      <%= link_to insecure_doa_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A4 Insecure DOA
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="csrf">
+      <%= link_to csrf_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A5 CSRF
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="misconfig">
+      <%= link_to misconfig_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
-        A6 Security Misconfiguration
-      </a>
+        A6 Misconfig
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="crypto">
+      <%= link_to crypto_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A7 Crypto
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="url_access">
+      <%= link_to url_access_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A8 URL Access
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="ssl_tls">
+      <%= link_to ssl_tls_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A9 SSL/TLS
-      </a>
+      <% end %>
     </li>
-    <li>
-      <a href="#">
+    <li id="redirects">
+     <%= link_to redirects_tutorials_path do %>
         <div class="icon">
           <span class="fs1" aria-hidden="true" data-icon="&#xe094;"></span>
         </div>
         A10 Redirects
-      </a>
+     <% end %>
     </li>
     <li class="submenu">
       <a href="#" class="selected">

app/views/tutorials/broken_auth.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="broken_auth"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/crypto.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="crypto"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/csrf.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="csrf"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/injection.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="injection"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/insecure_doa.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="insecure_doa"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/misconfig.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="misconfig"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/redirects.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="redirects"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/ssl_tls.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="ssl_tls"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/url_access.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="url_access"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

app/views/tutorials/xss.html.erb

@@ -0,0 +1,7 @@
+<script type="text/javascript">
+function makeActive(){
+	$('li[id="xss"]').addClass('active');
+};
+
+$(document).ready(makeActive);
+</script>

config/routes.rb

@@ -19,7 +19,11 @@ resources :tutorials do
     get "broken_auth"
     get "insecure_doa"
     get "csrf"
-    get "security"
+    get "misconfig"
+    get "crypto"
+    get "url_access"
+    get "ssl_tls"
+    get "redirects"
   end
 end